SSL Checker
Submit the Hostname and Port in the fields below. This checker supports SNI and STARTTLS.
Report
It's all good. We have not detected any issues.
| Hostname: | done Matches Common Name or/and SAN |
| Expired: | done No (51 days till expiration) |
| Public Key: | done We were unable to find any issues in the public key of end-entity certificate |
| Trusted: | done Yes, we were able to verify the certificate |
| Self-Signed: | done No, the end-entity certificate is not self-signed |
| Chain Issues: | done No, we were unable to detect any issues in the certificate chain sent by the server |
| Weak signatures: | done No, certificates sent by the server were not signed utilizing a weak hash function |
| OCSP Status: | done OCSP Responder returned "good" status for the end-entity certificate |
DNS Information
| Resolves To: | 176.223.134.148 |
| Reverse IP lookup: | najduzarec.rs. |
| Nameserver: | ns2.najduzarec.rs. |
| Nameserver: | ns1.najduzarec.rs. |
General Information
| Common Name: | najduzarec.rs |
| SANs: | DNS:najduzarec.rsDNS:webmail.najduzarec.rsDNS:www.najduzarec.rs Total number of SANs: 3 |
| Signature Algorithm: | sha256WithRSAEncryption |
| Key Type: | RSA |
| Key size: | 2048 bits |
| Serial Number: | 4147ea46fcdc31fda5ebc3ab30aab6ef5ca |
| Not Before: | Jun 18, 2024 09:48:33 GMT |
| Not After: | Sep 16, 2024 09:48:32 GMT |
| Number of certs: | 2 |
| Revocation Status: | good |
| OCSP Stapling: | Supported |
| Server: | Microsoft-IIS/10.0 |
| HSTS: | max-age=15768000; includeSubDomains |
| HPKP: | Not Supported |
Chain Information
Certificate # 1 - Common Name: najduzarec.rs
Decode this certificate for verbose information → launch| Subject Common Name | najduzarec.rs |
| Issuer Common Name | R11 |
| Issuer Organization | Let's Encrypt |
| Not Before: | Jun 18, 2024 09:48:33 GMT |
| Not After: | Sep 16, 2024 09:48:32 GMT |
| Signature Algorithm: | sha256WithRSAEncryption |
| Serial Number: | 4147ea46fcdc31fda5ebc3ab30aab6ef5ca |
| SHA1 Fingerprint: | C0:3C:BB:EB:2A:8B:61:8B:03:9F:3B:7E:45:1B:C6:DF:54:D0:E9:EA |
| MD5 Fingerprint: | 31:A2:CF:7E:6E:5C:1B:FB:0F:A8:AB:24:FC:6A:83:83 |
Certificate # 2 - Common Name: R11
Decode this certificate for verbose information → launch| In place? | Yes, this certificate directly certifies the preceding one |
| Subject Common Name | R11 |
| Subject Organization | Let's Encrypt |
| Issuer Common Name | ISRG Root X1 |
| Issuer Organization | Internet Security Research Group |
| Not Before: | Mar 13, 2024 00:00:00 GMT |
| Not After: | Mar 12, 2027 23:59:59 GMT |
| Signature Algorithm: | sha256WithRSAEncryption |
| Serial Number: | 8a7d3e13d62f30ef2386bd29076b34f8 |
| SHA1 Fingerprint: | 69:6D:B3:AF:0D:FF:C1:7E:65:C6:A2:0D:92:5C:5A:7B:D2:4D:EC:7E |
| MD5 Fingerprint: | 2F:AC:04:55:31:47:F4:6A:49:DF:9B:4E:BE:A6:DF:43 |
OpenSSL Handshake
depth=2 C = US, O = Internet Security Research Group, CN = ISRG Root X1
verify return:1
depth=1 C = US, O = Let's Encrypt, CN = R11
verify return:1
depth=0 CN = najduzarec.rs
verify return:1
CONNECTED(00000003)
OCSP response:
======================================
OCSP Response Data:
OCSP Response Status: successful (0x0)
Response Type: Basic OCSP Response
Version: 1 (0x0)
Responder Id: C = US, O = Let's Encrypt, CN = R11
Produced At: Jul 25 10:41:00 2024 GMT
Responses:
Certificate ID:
Hash Algorithm: sha1
Issuer Name Hash: 1A52B9B459E4C33398217E866D4BBD8A3BD667CE
Issuer Key Hash: 08B9113BA5D08518B4EA0FA0AD9F861E8EFC3827
Serial Number: 04147EA46FCDC31FDA5EBC3AB30AAB6EF5CA
Cert Status: good
This Update: Jul 25 10:41:00 2024 GMT
Next Update: Aug 1 10:40:58 2024 GMT
Signature Algorithm: sha256WithRSAEncryption
3b:2f:94:75:69:f9:e5:f1:7f:8e:ec:73:ff:39:14:81:f6:e3:
94:60:1a:ad:f7:44:b1:3d:c1:5c:b9:43:67:b7:c9:16:bb:63:
9c:8d:fe:ba:2b:16:ee:8f:c3:6a:e6:51:a6:49:1d:57:91:98:
dd:70:a6:8c:46:16:7e:2e:a7:b6:71:c6:d9:c4:b5:f8:10:f9:
a6:68:fc:68:85:83:ee:8c:a8:74:d9:4f:c1:59:12:a0:1b:b9:
5e:db:c6:49:09:bb:a4:7b:25:7f:de:0d:0b:26:a9:a4:52:d7:
c5:c0:ef:a6:db:08:aa:c0:d1:58:81:07:83:5c:11:ab:e8:d0:
35:06:28:b4:1e:03:7f:d5:d3:52:28:c9:7c:4f:da:5c:ad:d4:
82:6a:7b:6a:b5:f3:81:22:57:f4:a4:8a:6c:8f:13:1c:0e:e7:
bb:af:c0:e6:6a:00:02:4c:85:15:42:3c:f4:19:e2:ba:93:e0:
2b:ca:fd:34:1a:0e:5c:9c:6a:c6:d7:ff:09:f3:e9:e9:a7:5f:
7a:a1:b7:6f:7b:31:d1:89:25:54:78:d6:a7:e0:f8:21:35:1f:
7b:ab:14:78:10:e3:b4:0e:cb:af:1a:8c:23:90:17:5f:00:99:
70:76:c1:ed:bd:74:8d:c0:0e:0e:0e:89:4e:b4:63:11:d6:52:
a1:db:22:2e
======================================
---
Certificate chain
0 s:CN = najduzarec.rs
i:C = US, O = Let's Encrypt, CN = R11
-----BEGIN CERTIFICATE-----
MIIFFTCCA/2gAwIBAgISBBR+pG/Nwx/aXrw6swqrbvXKMA0GCSqGSIb3DQEBCwUA
MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD
EwNSMTEwHhcNMjQwNjE4MDk0ODMzWhcNMjQwOTE2MDk0ODMyWjAYMRYwFAYDVQQD
Ew1uYWpkdXphcmVjLnJzMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA
zqJZm5pdyUpa8o9+bpoGk71iP1pTwsBF9gjp+Of/qUceEAFk6CnLIGdQRIvqXw5G
bq13z7w7SLucUKT0pZ6keS6Fv5vGJd61bW+k+aJspHHFze+nWWGdv9FbaOAm5r5c
ewh43H5hUCkFjnYGvWTC0u3JCagq5j3xEmNw2oup4PBLLVBm7Xb9h1HEqB1SPJPc
zjD9bvOWrHFhP0qI9iBmv3ZxiX8YGhYKaC3Rx0DkYfpQHZm+JpG7GqZ7I6fhbc4X
J+Fc9zbMTtfDRcK7wV793/Kkz+f9B1oKL+vJzX/SLg/HH+ZNFRRTa78NCFL+eh6z
FGRI61YKf0T6AvIbGjihLwIDAQABo4ICPDCCAjgwDgYDVR0PAQH/BAQDAgWgMB0G
A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud
DgQWBBQVezYfMa9dn3/+W3N/gHSBhAiAcjAfBgNVHSMEGDAWgBTFz0ak6vTDwHps
lcQtsF6SLybjuTBXBggrBgEFBQcBAQRLMEkwIgYIKwYBBQUHMAGGFmh0dHA6Ly9y
MTEuby5sZW5jci5vcmcwIwYIKwYBBQUHMAKGF2h0dHA6Ly9yMTEuaS5sZW5jci5v
cmcvMEIGA1UdEQQ7MDmCDW5hamR1emFyZWMucnOCFXdlYm1haWwubmFqZHV6YXJl
Yy5yc4IRd3d3Lm5hamR1emFyZWMucnMwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEF
BgorBgEEAdZ5AgQCBIH2BIHzAPEAdgB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIK
n+ZnTFo6dAAAAZAq9ncNAAAEAwBHMEUCIFkebbG5KguZPKEt9EQBxg3BZPE1hd2e
QOc8KxbrtqD/AiEA0OniKqltW5ZAupgdMP40N9Q7eQitKVurS8+Kh7isyOIAdwDf
4VbrqgWvtZwPhnGNqMAyTq5W2W6n9aVqAdHBO75SXAAAAZAq9neTAAAEAwBIMEYC
IQCWiAcdNG4nUI4RP5DjOPI1EW2yNvtfqWAJfQrXwHncDQIhAKMiwd2D178VKRGs
86tsCJ+WCcw8libh8ZpecQYcYVsfMA0GCSqGSIb3DQEBCwUAA4IBAQB1reu+4eFJ
s9hCqDEbtVOuJIsujVt1LMPAUqGPRZ3UDB47X8XIcox1bby1gFEnBEGwaX23tNfk
h0wRfDF7o5WM5dCmEdrHlGRgDt9cBjzuwhjstm8H851OYbWktfXExGYmX6kOm+yw
2v1d91tp4Xdo6D86469upoR9dd47GrRaWSqfy7epETdTjzWXvBaR4g65kx4y3ZF4
yHHr1JMBg65kXSB5osCNqy0lSR1Y+169lXsKmj++lMBTyvpsj6uqa4KCYtXJgtQ3
Q2AOSw9qSxT0ga0wfezB2VJQb5RCh7G9QKz8xwNbFGefyT33EoS+aL6zEX98Vidr
sWw3bR58+h5p
-----END CERTIFICATE-----
1 s:C = US, O = Let's Encrypt, CN = R11
i:C = US, O = Internet Security Research Group, CN = ISRG Root X1
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
---
Server certificate
subject=CN = najduzarec.rs
issuer=C = US, O = Let's Encrypt, CN = R11
---
No client certificate CA names sent
Peer signing digest: SHA256
Peer signature type: RSA-PSS
Server Temp Key: X25519, 253 bits
---
SSL handshake has read 3606 bytes and written 404 bytes
Verification: OK
---
New, TLSv1.3, Cipher is TLS_AES_256_GCM_SHA384
Server public key is 2048 bit
Secure Renegotiation IS NOT supported
Compression: NONE
Expansion: NONE
No ALPN negotiated
Early data was not sent
Verify return code: 0 (ok)
---
DONE